Firewall Management - NSX
Manage Firewall Rules, Services and Security Groups in VMware’s NSX from ServiceNow.
Managing multiple NSX instances and ensuring that Firewall Rules are consistently applied in all relevant areas of the infrastructure requires manual intervention and is often prone to human error. If a firewall rule is applied in production but forgotten or incorrectly applied in DR, the effort to locate this error and get it fixed can inadvertently consume support resources. In addition, the NSX web portal is designed for a administrator with advanced skills and knowledge for firewall and security group management.
Allows a user to request a firewall rule or security group from ServiceNow and it will create, modify, and delete across multiple NSX instances. User can group Virtual Machines in security groups to facilitate assignment of rules for specific applications or nodes. It will allow or block communication to specific ports or services. The user can also create custom services in NSX instance(s).
User-friendly interface, which reduces the requirement to have a security administrator, involved. The security administrator and manager would get an approval request and when approved the firewall or security group request would be completed.
The centralized request allows the user to identify which NSX instances the request for a firewall rule or security group must be applied. When approved the request is processed automatically to all the NSX instances requested. For example, if a user needs port 443 opened on both production and DR site, one request will automatically create both Firewall Rules in both locations.
Description: Firewall management displays Firewall Rules across all back end instances through a single ServiceNow interface. The user interface in ServiceNow is the same regardless of the back end firewall solution. Client problem solved: Allow the user to see Firewall Rules across multiple NSX Instances.
Description: Firewall management allows the user to create and delete Security Groups through an easy ServiceNow interface that is the same regardless of the back end firewall solution. Security Groups are used to group objects such as VMs and IP addresses together and can be used in the source and destination fields of Firewall Rules. Client problem solved: Allow the user to create security groups, which are groups of IP addresses or VMs that can be used as traffic endpoints when creating Firewall Rules and security policies.
Description: Firewall management allows the user to create and delete Firewall Rules through an easy ServiceNow interface that is the same regardless of the back end firewall solution. Client problem solved: Allow the user to create and delete Firewall Rules across multiple NSX instances through a single ServiceNow interface.